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Description 

The Field of the invention 

The invention relates to a method tor checking the 
identification number of a subscriber in a mobile equip- 
ment employed in a mobile communications system, 
said mobile equipment being a combination of a sub- 
scriber station and an individual subscriber identity mod* 
ule containing a protected subscriber identity, said indi- 
vidual subscriber identity module being removably at- 
tached to the subscriber station, whereby a mobile 
equipment may be composed by attaching the subscrib- 
er identity module to any subscriber station, the method 
comprising the steps of: requesting the user of the mo- 
bile equipment the personal identification number of the 
subscriber, checking from the subscriber identity mod- 
ule the validity of the personal identification number en- 
tered by the user, repeating these steps provided that 
the user does not enter the valid personal identification 
number, blocking the subscriber identity module when 
the number of requests and checks of the personal iden- 
tification number exceeds a predetermined threshold 
value. 

A first embodiment of the invention relates to a radio 
telephone or a mobile communication system in which 
the subscriber identities and terminal equipments are 
permanently connected to each other as mobile sta- 
tions. Such mobile equipments are usually subscriber- 
specific and they are identified with a protected sub- 
scriber identity (IMSI = International Mobile Subscriber 
Identity or ITSl = Individual Tetra Subscriber Identity). 

A second embodiment of the invention relates to a 
radio telephone system in which subscribers and termi- 
nal equipments are not permanently connected togeth- 
er, and particularly terminal equipments and ubscriber 
identity modules, such as SIM cards (SIM = Subscriber 
Identity Modules), within these networks. Such systems 
include, for example, cellular networks comprising 
phones in which a subscriber Is identified by a subscrib- 
er-specific subscriber identity module provided in the 
phones. One example of such a cellular communication 
system is the GSM system (Global System for Mobile 
Communications). Another example is the TETRA 
(Trans European Trunked Radio) mobile communica- 
tion system. The TETRA mobile communication sys- 
tem, in turn, represents an example of the PMR (Private 
or Professional Mobile Radio) mobile communication 
system. It must be noted that mobile equipments ac- 
cording to the first embodiment of the present invention, 
in which terminal equipments and subscribers are per- 
manently connected to each other, may also operate in 
these mobile communications systems. 

Background of the Invention 

The subscriber identity module, such as a SIM card, 
is subscriber-specific, which means that subscriber 



equipments are not confined to a specific subscriber. 
The subscriber identity module, such as a SIM card or 
a GSM card, is a smart card or a smart card which is 
placed in the mobile equipment and contains informa- 
s tion required for identifying a subscriber and for encrypt- 
ing radio traffic. A subscriber identity module, such as a 
SIM card, refers herein to a smart card that can be rer 
moved from a mobile equipment and that allows a sub- 
scriber to use the card controlled mobile equipment. 
10 If a subscriber Identity module is employed, the user 
need not have a mobile equipment of his own, but a sub- 
scriber identity module is all he needs. Such a subscrib- 
er identity module can be, for example, a SIM card (Sub- 
scriber Identity Module) which is. In a way, a phone card 
IS that allows the subscriber to make (and receive) calls 
from any mobile equipment of the system. The purpose 
of a SIM card, on the one hand, is to provide the mobile 
equipment with data identifying the user safely in a pro- 
tected form, and, on the other hand, to provide sen^ices 
to the mobile equipment. The services include mainte- 
nance of the identification number (input, alteration, 
etc.), calculating an encryption key by means of user 
identity algorithms, and unblocking a SIM card blocked 
after an excessive number of entered false personal 
identification numbers (PIN) for example by means of a 
PUK code (PUK-code = Personal Unblocking Key). 

As an alternative way of implementing a SIM card 
in hand-held phones, a so-called plug-in-SlM has been 
introduced. A plug-in-SIM is a coin-sized part containing 
the electronics of a credit card sized SIM card. It is so 
placed in a phone that the user is not able to replace It 
with ease. The phone may also have an incorporated 
plug-in-SIM and, in addition, a card reader. If the card 
reader contains a card, the phone is identified on the 
basis of the external card, otherwise on the basis of the 
incorporated plug-in-SlM. The term subscriber identity 
module, such as a SIM card, herein generally refers to 
both the plug-in-SIM and the smart card SIM unless ad- 
vised to the contrary. 

The general function of a SIM card is specified in 
the GSM recommendation 02.17, Subscriber Identity 
Modules, ETSI, of the GSM mobile communication sys- 
tem. It defines the terms associated with a SIM card and 
sets the requirements for the security of a SIM card, 
functions of the highest level, defines the tasks for the 
network operator and the information to be stored in a 
SIM card. It also specifies the minimum requirements 
for a SIM card of a user interface of a phone, such as a 
mobile equipment, concerning for example the input and 
change of a user's Personal Identification Number 
(PIN). 

In addition, the GSM recommendation 11.11, SIM 
Application Protocol, ETSI, defines more closely the is- 
sues specified by the aforementioned GSM recommen- 
dation 02.17 by defining the protocols between a SIM 
card and a mobile equipment (ME = Mobile Equipment), 
the exact contents and lengths of the data fields of the 
SIM card, as well as the matters related to mechanical 
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and electrical connections. The GSM recommendation 
11.11 is a documentation on the basis of which engi- 
neers are expected to be able to provide the software 
and hardware implementation of a SIM interface. 

A problematic situation arises in the use ot mobile s 
communications systems when a mobile equipment 
and/or a SIM card is lost and comes into the wrong 
hands. Thus, since losing the phone is not necessarily 
noticed immediately, the person who has stolen the mo- 
bite equipment may try breaking the PI N code of the SIM 
card by trying different codes. When an unauthorized 
user has made a sufficient number of attempts to break 
the PIN code, the SIM card may block itself in such a 
way that it cannot be activated any more by means of 
the PIN code only, but a PUK code for cancelling the 
blocking must be entered. This function alone prevents 
unauthorized use ot the SIM card, but it does not assist 
In identifying or neutralizing the unauthorized user in any 
way. 

When a mobile equipment is taken into use, identi- 
fying the mobile user is usually started by requesting the 
user an identification number, such as a PIN (Personal 
Identification Number) associated with the mobile 
equipment or the SIM card. The personal identification 
number PIN related to the user of the SIM card and the 
mobile equipment must thus be entered into the mobile 
equipment and further into the SIM card if data fields 
determined on a PIN encryption level are wished to be 
read or altered. In practice, this is done every time in 
connection with activating the telephone or Inserting the 
SIM card into a card reader. 

Once the valid identification nurriber has been en- 
tered, the card will also allow reading information locat- 
ed within a confidential area of the card memory. 

If the user enters an invalid personal identification 
number (PIN), the SIM returns the invalid code, and the 
identification number is requested again. The SIM also 
increments its internal error counter, which cannot be 
adjusted by the user in any circumstances. If the user 
enters three invalid identification numbers in a row. the 
SIM shifts into a blocked state. 

A blocked card may be re-activated, depending on 
the implementation, with a specific PUK identification 
number or possibly only by means of the service meas- 
ures carried out by the manufacturer, A SIM that is in 
the blocked state only receives an unblocking command 
(UNBLOCK) for a blocked SIM card. In such a case, the 
user enters the SIM card an unblock PUK code which 
is 8 digits in length. Provided that the user enters an 
invalid unblock PUK identification number e.g. for ten 
times, the SIM shifts into a permanently blocked state, 
from which it can be returned only by the network oper- 
ator that has provided the SIM card. 

A prior art subscriber identity module i.e. a SIM card 
may prevent the use of mobile equipment or corre- 
spondingly of the subscriber identity module, that is, the 
SIM card in such a manner that when an unauthorized 
user makes a sufficient number of attempts to break the 



PIN code, that is, when the unauthorized user enters an 
invalid PIN code for a sufficient number of times, the mo- 
bile equipment or the card blocks itself so that it can no 
longer be reactivated only by means of the PIN code, 
but some other unblocking code, such as a PUK code 
must be entered. The mobile equipment or the subscrib- 
er identity module is thus deactivated provided that the 
unauthorized user knows neither the PIN code nor the 
PUK code (PUK = Personal Unblocking Key), 

Another aspect of the matter disclosed above is the 
fact that the memory of the smart cards employed as 
subscriber identity modules, or SIM cards, is usually di- 
vided into parts according to the fact who has an access 
right to the data located in the memory: the memory Is 
usually divided into three zones on the basis of the en- 
cryption class: an open, a confidential and a secret 
zone. On the confidential zone, such data is stored that, 
in order to be read and altered, requires a PIN identifi- 
cation number to be entered to the card. The memory 
of such a mobile equipment that is not connected to a 
subscriber identity module may also be divided into 
open, secret/confidential zones In the manner described 
above. In the confidential area of both the mobile equip- 
ment and of the SIM card, ail user-specific data is stored, 
including protected subscriber identities, such as an IM- 
Sl ^ International Mobile Subscriber Identity In the GSM 
system and an ITSI = Individual Tetra Subscriber Iden- 
tity in the TETRA system. 

US-patent 4,843,385 shows an electronic lock sys- 
tem for a two-way radio. The radio is locked by entering 
a security code. While locked, the keypad is disabled 
and cannot be used. In order to unlock the keypad, the 
proper three-digit code must be entered. If an improper 
code is entered, the radio automatically transmits a 
message to indicate the identity of the radio and that an 
improper code has been entered. 

Selected papers from the second International 
Smart Card 2000 Conference, 4-6 October 1989, Am- 
sterdam. NU 1991, pages 93-107. XP000472724, Far- 
rugia A. J. Et al: "Smart Card Technology Applied to the 
Future European Cellular Telephone on the Digital D- 
network" is an overview of the application of smart card 
technology as used in the Subscriber Identity Modules 
of the future European mobile cellular telephone system 
based on the digital D-network. 

Being capable of accommodating the "roaming" us- 
er, as described above, implies a noticeable feature of 
the GSM system: a GSM system requires a reliable yet 
flexible way of uniquely identifying each single customer 
throughout the entire span of the inter<onnected net- 
works. Also, it is required that the identity of a customer 
be not attached to a particular phone station. Thus, the 
concept of a detachable Subscriber Identity Module 
(SIM) has been adopted. 

Brief Description of the Invention 

It is an object of the present invention to provide a 
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method that allows checking the identification number 
of a mobile subscriber and preventing an unauthorized 
use of a subscriber identity nnodule, that Is, a SIM card. 
It is an object of the invention to improve the safety of 
the network operator and the user and to protect them 
against unauthorized use of mobile equipments and of 
subscriber identity modules, and particularly against at- 
tempts to use them without permission. 

The invention relates to a method for checking a 
personal identification number of a subscriber in a mo- 
bile equipment employed in a mobile communications 
system, said mobile equipment being a combination of 
a subscriber station and an Individual subscriber identity 
module containing a protected subscriber Identity, said 
Individual subscriber Identity module being removably 
attached to the subscriber station, whereby a mobile 
equipment may be composed by attaching the subscrib- 
er identity module to any subscriber station, the method 
comprising the steps of: requesting the user of the mo- 
bile equipment the personal identification number of the 
subscriber, checking from the subscriber Identity mod- 
ule the validity of the personal identification number en- 
tered by the user, repeating these steps provided that 
the user does not enter the valid personal identification 
number, and blocking the subscriber identity module 
when the number of requests and checks of the person- 
al identification number- exceeds ~a predetermined 
threshold value. 

The invention is characterized by the method fur- 
ther comprising the steps of: releasing a protection of 
the protected subscriber identity in the subscriber iden- 
tity module after the blocking of the subscriber identity 
module, the subscriber statbn requesting the released 
subscriber Identity from the subscriber identity module, 
the subscriber identity module sending to the subscriber 
station the released subscriber identity, transmitting to 
the mobile communications system said subscriber 
identity and an indication that the subscriber identity 
module has been blocked. 

The invention further relates to a mobile equipment, 
said mobile equipment being a combination of a sub- 
scriber station and an Individual subscriber identity mod- 
ule containing a protected subscriber identity, said indi- 
vidual subscriber identity module being removably at- 
tached to the subscriber station, whereby a mobile 
equipment may be composed by attaching the subscrib- 
er identity module to any subscriber station, the mobile 
equipment comprising: a user interface for requesting a 
personal identification number of a subscriber from the 
user of the mobile equipment, checking means for 
checking the validity of said personal identification 
number of the subscriber, a counter for counting the 
number of validity checks of the persona! identification 
number of the subscriber, and blacking means respon- 
sive to said counter for blocking the subscriber identity 
module when the number of said validity checks ex- 
ceeds a predetermined number without the user of the 
mobile equipment having entered a valki personal iden- 



tification number. 

The mobile equipment according to the Invention is 
characterized by said mobile equipment further com- 
prising: releasing means responsive to said blocking 
5 means for releasing the protection of the protected sub- 
scriber identity in the subscriber identity module after 
the blocking of the subscriber Identity module, means 
for requesting the released subscriber Identity from the 
subscriber identity module, means for sending the re* 
10 leased subscriber identity from the subscriber identity 
module to the subscriber station, and transmission 
means for transmitting to the mobile communications 
system the released subscriber Identity and an indica- 
tion that the subscriber identity nrKxiule has been 
blocked. 

This application discloses a method that allows the 
mobile equipment to indicate to the system an informa- 
tion that an attempt is made at misusing the mobile 
equipment or a subscriber Identity module, such as a 
SIM card, attached thereto. Misuse may refer to break- 
ing the secret identification number of the SIM card, for 
instance. 

The invention is based on the idea that a mobile 
equipment or a subscriber identity module, that is, a SIM 
card releases the protection of a subscriber Identity (IM- 
SI, ITSI) when blocking Itself as a result of Invalid PIN 
codes. The SIM may thus communicate the subscriber 
Identity (IMSI, ITSl) to the mobile equipment provided 
that it reque sts it subsequent to blocking of the SI M card. 
All the other information on the SI M card further remains 
protected. A mobile equipment/SIM card that operates 
in this manner may indicate towards the system the sub- 
scriber identity, the mobile equipment or SIM card cor- 
responding to which was attempted to break by breaking 
the PIN identification number of the subscriber related 
to the mobile equipment or the SIM card in question. 

The invention discloses how to indicate to the mo- 
bile communications system an attempt to break into a 
mobile equipment or a SIM card. 

The advantage of such a method and a mobile 
equipment according to the invention is the fact that they 
solve problems related to safety of prior art mobile com- 
munications systems and mobile equipments. 

Prior art courses of action are insufficient because 
an attempt to break into a mobile equipment or a sub- 
scriber identity module, such as a SIM card attached 
thereto is presumably not indicated to the system. 

In networks designed for public safety, in particular, 
such as PMR and TETRA networks it would be most 
desirable that an attempt to break into a mobile equip- 
ment or a SIM card attached thereto would be indicated 
to the system. The mobile equipment and the method 
of the invention allow this, that is, they allow the mobile 
communications system to receive an information of 
some user attempting to break the mobile equipment or 
the subscriber identity module for his own. unauthorized 
use. 

In accordance with the invention, when the mobile 
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network receives the information on the attempt to break 
into the mobile equipment or the SIM card, the mobile 
network may thus try to block the mobile equipment or 
the subscriber identity module that has been attempted 
to break into so that they are no longer allowed to use 
the sen/ices ot the network. In addition, the network op- 
erator or a supervisor or a duty officer of a smaller user 
group may be provided with the data related to the object 
of the breaking attempt, and they may take the required 
steps for preventing the unauthorized use. 

Brief Description of the Drawings 

tn the folbwing. the inventbn will be disclosed in 
greater detail with reference to the attached drawings, 
in which 

Figure 1 is a flow diagram illustrating the operation 
of a subscriber identity module according to a sec- 
ond embodiment of the invention, 
Figure 2 is a flow diagram illustrating the operation 
of a mobile equipment according to the second em- 
bodiment of the invention, and 
Figure 3 is a block diagram illustrating the mobile 
equipment of the invention. 

-Detalled-Deecriptlon-of-theJnventlon 



The invention is based on the idea that a mobile 
equipment may unblock an encrypted subscriber iden- 
tity located in its memory or on a SIM card attached to 
the mobile equipment if the SIM card has blocked itself 
as a result of entered invalid PIN codes. Figure 1 shows 
the operation of the method from the point of view of the 
SIM card, and Figure 2 from the point of view of the mo- 
bile equipment. After receiving the subscriber identity 
from the SIM, the mobile equipment transmits an infor- 
mation of the attempt, along with the subscriber kientity, 
to the system. 

The operation of the first embodiment of the inven- 
tion must be understood by means of a description of 
the operation of the second embodiment of the inven- 
tion. Thus, requesting and checking the subscriber-spe- 
cific PIN code (password) associated with the subscrib- 
er identity module of the second embodiment corre- 
sponds to checking the subscriber identification number 
according to the first embodiment. 

Figure 1 is a flow chart of the operation of the sub- 
scriber identity module according to the second embod- 
iment of the invention. Instep 101 the subscriber identity 
module, hereinafter referred to as a SIM card, starts to 
identify its user. This is carried out in step 102 'by re- 
questing the user of the card or, according to the first 
embodiment of the invention, the user of the mobile 
equipment an individual PIN code of a subscriber con- 
nected to the mobile equipment or the subscriber iden- 
tity module, respectively. Once the code has been ob- 
tained, the validity of the PIN code is checked in step 



1 03. Provided that the PIN code provided by the user is 
valid 104, the protections of the SIM card, that Is, the 
confidential memory zone of the SIM card, are released. 
Correspondingly, in the first embodiment of the inven- 

s tion, it would be possible to release the confidential zone 
of the memory of the mobile equipment. Subsequently, 
the operation of the mobile equipment and of the SIM 
card continues as usual. 

if, in turn, it is detected In step 1 03 that the PIN code 

10 entered to the mobile equipment is invalid 107, It is 
checked 108 how many times an Invalid PIN code has 
already been entered into the mobile equipment. Pro- 
vided that the number of invalid PIN codes is smaller 
1 09 than a predetermined threshold value, the operatksn 

IS of the mobile equipment/SIM card returns to step 102, 
where the PIN code is requested again from the user of 
the mobile equipment. 

If, in turn, It Is detected in the check in step 108 that 
the maximum number of PIN codes has already been 

20 requested 110, the use of the SIM card or, in the second 
embodiment of the inventton, of the mobile equipment 
is blocked 111. Thereafter, the user can no longer use 
the SIM card or the mobile equipment without the valid 
PUK code of the SIM card in question being entered into 

2S the card or the mobile equipment. Following this, the 
protection of the subscriber identity code located on the 

— -^SIM-card-or-in-the-memory-of-the-mobile equipment is- 
released, that is. the protection of the IMSI or ITSl iden- 
tity is released so as to find out the identity. In the second 

30 embodiment of the invention, this identity is then first 
transmitted to the mobile equipment, which, as in the 
first embodiment of the invention, transmits to the mo- 
bile network said identity and the indication that an at- 
tempt has been made to break the PIN code e.g. in a 

35 registration message. Of course, the indication can be 
transmitted to the network in all other messages. The 
network Is thus informed that an attempt has been made 
to break the PIN code of the mobile equipment or the 
SIM card, whereby the network or the operator may con- 

40 elude that the subscriber identification number in ques- 
tion is associated with a user who is attempting at mis- 
using the network and the user in question may thus be 
blocked outside the network. 

Following this in step 113 the PUK code is request- 

^ ed from the mobile user. Thereafter, it is checked in step 
114 whether the entered PUK code is valid. In case the 
entered PUK code is valid 115, a PIN code counter is 
reset 1 1 6, whereby the user may again feed a predeter- 
mined number of 'Invalid* PIN identification numbers 

SO without the operation of the SIM card or the mobile 
equipment being blocked. In other words, the procedure 
returns to step 102, in which the PIN code is requested 
from the user. 

If, in turn, the user enters an invalid PUK code 117, 

55 it is checked 118 from the following counter whether a 
maximum number of invalid PUK codes has been en- 
tered into the mobile equipment or the SIM card. In case 
the maximum number has not yet been exceeded 119, 
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the procedure returns to step 1 1 3, where the PUK code 
IS requested again from the user. If, again, the maximum 
number is exceeded 120, the SIM card or the mobile 
equipment is completely blocked 121. 

Figure 2 shows a flow chart of the operation of the 
second embodiment of the invention. The operation of 
the method starts from step 201, where the mobile 
equipment receives from a subscriber identity module, 
such as a SIM card attached thereto a request to ask 
for the PIN identification number from the user of the 
mobile equipment. This Is an example of the operation 
in accordance with the second embodiment of the in- 
vention. In the solution according to the first embodi- 
ment of the invention, no SIM card is attached to the 
mobile equipment, but it carries out requesting the Iden- 
tification number of the subscriber and checking the va* 
lidity, and the following operation independently. After 
receiving a request 201 from the SIM card, the mobile 
equipment concludes 202 that the code requested is a 
PIN code. Thereafter the mobile equipment requests 
203 the code in question from its user via its user Inter- 
face. The mobile equipment receives the PIN code by 
means of its user interface and transmits It 204 to the 
SIM card according to the second embodiment of the 
invention. This subscriber identity module thus carries 
out checking the PIN code in the manner described 
above in step 103 of Figure 1 and returns 205 an answer 
to the mobile equipment, which analyses 206 the mean- 
ing of the answer In the solution according to the first 
embodiment of the invention, checking the PIN code 
and measures caused by it may of course be carried out 
in the actual mobile equipment. ' 

The mobile equipment acts as follows on the basis 
of the analysis of the information/answer transmitted by 
the SIM card: 

In case the SIM card has provided 207 information 
that the SIM card is blocked and that the user of the 
mobile equipment Is requested to enter a PUK code, the 
mobile equipment requests 208, according to the inven- 
tion, the subscriber identity, that is, an IMSI or ITS! iden- 
tity from the SIM card. The SIM card thus releases the 
protection of these identities in its own memory and 
transmits 209 a subscriber identity (IMSI, ITSI) to the 
mobile equipment. According to the first embodiment of 
the invention, the aforementioned releasing the protec- 
tion of the subscriber identity would be carried out in the 
mobile equipment, in which the subscriber identity 
would be stored, as well. Following this, in step 210, the 
mobile equipment informs the mobile communication 
system according to the invention that an attempt has 
been made to break into the SIM card (the second em- 
bodiment) or the mobile equipment (the first embodi- 
ment) and that the SIM card (or mobile equipment) in 
question has been blocked. The mobile equipment may 
thus act as follows: 

The mobile communications system may temporar- 
ily disable the radio unit or the mobile equipment in 
which the SIM card has been attempted to use (tempo- 



rary disabling*). The radio unit in question thus cannot 
be used for communication, but the system may monitor 
the location of the radio unit In the network. 

The system may also permanently disable the radio 
5 unit ('permanent disabling'). 

The access of the subscriber to whom the blocked 
SIM card belongs is prevented from this on. This is done 
by labelling the subscriber in question as a lorbidden 
subscriber' In the databases of the system, in which 
case the operation of this subscriber in the network is 
restricted e.g. so that the calls of the subscriber are not 
allowed or some sen/ices are closed. 

Since after blocking the SIM card, the subscriber 
Identity on the card may also be read by the person who 
has made the attempt on misuse, the subscriber must 
usually be labelled as a 'forbidden subscriber* in each 
case. It must be noted, however, that although the sub- 
scriber identity would not be marked as forbidden, it is 
not possible to be authenticated in the system using this 
Identity because the authentication key required for au- 
thentication is not available due to blocking the card. 

In accordance with the invention, the attempt at mis- 
using the card is further reported to persons supervising 
the use of the mobile communications system or e.g. to 
a duty officer or a dispatcher of a 'public safety' network. 
The person supervising the use of the system may 
thereafter contact the legitimate owner of the SIM card 
and inquire whether the card has possibly come Into the 
wrong hands. 

Subsequently, the implementation of the invention 
continues from step 211. in which the following code re- 
quested by the mobile equipment and the SIM card is 
the PUK code, which must be entered correctly by the 
user In order that the PIN code can be requested again 
from the user and that the SIM card and the mobile 
equipment can be returned to use provided that the user 
enters the valid PIN code. Thereafter, the procedure re- 
turns 220 to step 203, in which the code is requested 
from the user. 

If, again, it is detected in step 206 that the answer 
obtained from the SIM card or the observation made by 
the mobile equipment (in the first embodiment) indicates 
that the user has entered a valid PIN code 21 2, the mo- 
bile equipment starts its operation as usual. 

If, again, It is detected In step 206 that the answer 
obtained from the SI M card or the observation of the mo- 
bile equipment (in the first embodiment) indicates that 
the user has entered a valid PUK code 214, the opera- 
tion continues so that the user interface of the mobile 
equipment is reported 215 that the following piece of in- 
formation requested from the user is the PIN code, 
which, when entered correctly, allows the user to acti- 
vate the mobile equipment. The procedure thus returns 
221 to step 203, in which the code is requested from the 
user 

If, again, it Is detected in step 206 that the answer 
obtained from the SIM card or the observation made by 
the mobile equipment (in the first embodiment) indicates 
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that the user has entered an invalid PUK code 216. the 
procedure shifts 217 to step 203, in which the PUK code 
is requested again. 

If, again, it Is detected in step 206 that the answer 
obtained from the SI M card or the obsen/ation of the mo- s 
bile equipment (in the first embodiment) indicates that 
the user has entered an invalid PIN code 218, the pro- 
cedure shifts 219 to step 203, in which the PIN code is 
requested again. 

Figure 3 shows a block diagram of a radio unit ac- io 
cording to the invention. The figure shows the infrastruc- 
ture (I NFRA) of the mobile communications system 600. 
The networic infrastructure comprises e.g. base sta- 
tions, switching centres, databases DB and other tele- 
communications equipments. The figure shows a typical is 
radio unit 600, that is, a radio telephone, mobile equip- 
ment or a subscriber station used by the subscriber 
communicating in a mobile communications system. 
The purpose of a transceiver (TX/RX) 501 is to be adapt- 
ed to a radio channel employed at each moment, the 20 
mobile equipment communicating via said radio chan* 
nel with the network infrastructure. The transceiver 501 
Is connected to an antenna 502, which is connected to 
the radio path RP. Usually, radio frequencies between 
60 - 1000 MHz (VHP and UHF frequency ranges) are 26 
employed although other frequencies may be em- 
ployed, as well. On the radio path RP, anatog or digital 
modulation may be employed. 

A user interface 505 comprises electroacoustic 
converter means, typically an earpiece 506 and a mi- 
crophone 507 and possibly keys associated with start- 
ing, ending and dialling a call. Mobile equipments em- 
ployed in trunking systems may also comprise a push- 
to-talk button which must be pressed down during a 
speech turn. 

The purpose of a control unit 503 is to control the 
operation of the radio unit. The control unit 503 is con- 
nected to the user interface 505, which provides it e.g. 
with Impulses associated with starting and ending a call. 
Via the user interface 505, the control unit 503 may also 
give the user sound signals or visual signals associated 
with the operation of the radio telephone and/or the radio 
telephone system. 

The control unit 503 is connected to the transceiver 
TX/RX 501. The channel empfoyed by the transceiver 
Is determined by the control unit 503, that is, the trans- 
ceiver 501 is tuned onto the channel, I.e. the radio fre- 
quency, determined by the control unit 503, and into a 
suitable time-slot. The transceiver 501 is also switched 
on under control of the control unit 503. The control unit 
503 receives and transmits signalling messages via the 
transceiver 501, 

The mobile equipment or the radio unit 500 accord- 
ing to the invention may be employed e.g. in a radio sys- 
tem comprising a radio network comprising at least one 
base station and subscriber stations and possibly one 
or more repeater stations and databases DB. Said radio 
unit thus comprises a transceiver unit 501 for receiving 



transmissions transmitted by other radio units or base 
stations, and for transmitting transmissions to said other 
radio units or base stations, a control unit 503 for con- 
trolling the operation of the radio unit and a user inter- 
face 505. 

A mobile equipment 500 according to the first em- 
bodiment of the invention comprises memory means 
508 for storing a protected subscriber identity IMSl or 
ITSI, a user interface 505 for requesting the subscriber 
identification number PIN from the user of the mobile 
equipment, checking means 51 0 for checking the valid- 
ity of said subscriber identification number PIN, counter 
511 for counting the number of validity checks of the 
subscriber identification number PIN. and bkxsking . 
means 512 responsive to saki counter 511 for blocking 
the mobile equipment when the number of said checks 
exceeds a predetermined number without the user of 
the mobile equipment having entered a valid identifica- 
tion number PIN by means of said user interface 505. 

The mobile equipment 500 of the invention further 
comprises releasing means 51 3 for releasing the pro- 
tection of the protected subscriber identity in the sub- 
scriber Identity module and for finding out the subscriber 
identity, and transmission means 51 4 for transmitting to 
the mobile communications system 600 the found sub- 
scriber identity and an indication that the mobile equip- 
ment has been blocked. 

In the mobile equipment of the invention, releasing 
51 3 the protection of the protected subscriber identity is 
carried out after blocking the mobile equipment 500 (see 
step 11, Figure 1). 

In the mobile equipment 500 of the invention, said 
subscriber identity IMS! or ITSI and the indicatbn that 
the mobile equipment 500 has been blocked are trans- 
mitted to the mobile communications system e.g. in a 
registration message. 

A mobile equipment according to the second em- 
bodiment of the invention comprises a user interface 
505 for requesting the subscriber identification number 
PIN from the user of the mobile equipment, a subscriber 
specific subscriber identity module SIM, 509 provided 
with a subscriber identity, which is removably attached 
to said mobile equipment. 

A mobile equipment according to the second em- 
bodiment of the Invention further comprises checking 
means 510 for checking the validity of said subscriber 
identification number PIN, counter 511 for counting the 
number of validity checks of the subscriber Identification 
number PIN, and blocking means 515 responsive to 
said counter 511 for blocking the subscriber identity 
module when the number of said checks exceeds a pre- 
determined number without the user of the mobile 
equipment 500 having entered a valid identification 
number PIN. 

The mobile equipment of the invention further com- 
prises releasing means 516 for releasing the protection 
of the protected subscriber identity IMSl. ITSI in the sub- 
scriber identity module SIM. 509. and for finding out the 
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subscriber identity, and transmission means 517 for 
transmitting to the nriobile communications system the 
found subscriber identity and an indication that the sub- 
scriber identity module has been blocked. 

In the mobile equipment of the invention, releasing 
1 12 the protection of the protected subscriber identity is 
carried out after blocking 111 said subscriber identity 
module SIM, 509. 

In the mobile equipment of the invention, said sub- 
scriber identity I MSI or ITSI and the indication that the 
subscriber identity module SIM, 509 has been blocked 
(step 111, Figure 1) are transmitted to the mobile com- 
munications system e.g. in a registration message. 

The figures and the explanation associated there- 
with are only intended to illustrate the present invention. 
In detail, the method and the mobile equipment of the 
invention may vary within the scope of the attached 
claims. 

The aforementioned operation in which the mobile 
equipment informs the mobile communications system 
of an attempt to break the protection of a PIN code of a 

subscriber identity module, that is, of a SIM-card, may 
be implemented in two alternative manners: 

(1 ) the subscriber identity IMSI, ITSI may be stored 
in such a manner that the PIN code protection does 
not apply to it. The subscriber identity may thus be 
read from the card in every case regardless of 
whether a PIN code has been entered or not and 
whether the card has blocked itself or not. Or alter- 
natively: 

(2) the subscriber identity has been stored in such 
a manner that the identity may be read in two cases 
only: 

a) when a valid PIN code has been entered, and 

b) when the card has been blocked as a result 
of entering invalid PIN codes. 

In case b) it is not possible to read other information 
from the card, except for the subscriber identity. 

The implementation according to alternative (2b) 
shown above is more functional because in that case 
the subscriber identity can be read without a valid PIN 
code in such a case only where the card is blocked and 
it is thus not possible for the subscriber identity to come 
into the hands of an unauthorized user by mistake. 



Claims 

1, A method for checking a personal identification 
number (PIN) of a subscriber in a mobile equipment 
(500) employed in a mobile communications sys- 
tem (600), said mobile equipment being a combina- 
tion of a subscriber station (501. 503, 505) and an 
individual subscriber identity module (509, SIM) 
containing a protected subscriber identity (IMSI. IT- 



SI), said individual subscriber identity module being 
removably attached to the subscriber station, 
whereby a mobile equipment may be composed by 
attaching the subscriber k:lentity module (509, SIM) 
s to any subscriber station, the method comprising 
the steps of: 

requesting (203) the user of the mobile equip- 
ment the personal identification number (PIN) 

10 of the subscriber, 

checking (103) from the subscriber identity 
module the validity of the personal identification 
number (PIN) entered by the user, 
repeating (109) these steps provided that the 

75 user does not enter the valid personal identifi- 

cation number (PIN), 

blocking (111) the subscriber identity module 
(509, SIM) when the number of requests (203) 
and checks (103) of the personal identification 
20 number (PIN) exceeds (110) a predetermined 

threshold value, 

characterized by the method further comprising 
the steps of: 

25 

releasing (112) a protection of the protected 
subscriber identity (IMSI, tTSI) in the subscrib- 
er identity module (509, SIM) after the blocking 
(111) of the subscriber identity module (509, 
30 SIM), 

the subscriber station requesting (208) the re- 
leased subscriber identity from the subscriber 
Identity nrKxiule, 

the subscriber identity module sending (209) to 
3S the subscriber station the released subscriber 

identity, 

transmitting (210) to the mobile communica- 
tions system (600) said subscriber identity (IM- 
SI, ITSI) and an indication that the subscriber 
40 identity module (509, SIM) has been blocked. 

2. A method as claimed in claim 1 , characterized by 
transmitting said subscriber identity (IMSI, ITSI) 
and said indication that the subscriber identity mod- 

4S ule (509, SIM) has been blocked (111), to the mobile 
communicatk)ns system (600) in a registration mes- 
sage. 

3. A method as claimed in claim 1 , characterized by 
so labelling said subscriber identity as forbidden in a 

database (DB) of the mobile communications sys- 
tem (600) in response to said subscriber identity 
(IMSI, ITSI) and said indication that subscriber iden- 
tity module (509, SIM) has been blocked (111), 
55 transmitted (210) to the mobile communications 
system (600). 

4. A method as claimed in claim 3, characterized by 
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said subscriber identity being no longer valid for em- 
ploying the services of the mobile communications 
system in response to said labelling of said sub- 
scriber identity (tMSl. ITSI) as forbidden in the da- 
tabase (OB) of the mobile communications system s 
(600). 

5. A method as claimed in claim 3. characterized by 
said subscriber identity being no longer valid for em- 
ploying the services of the mobile communications io 
system, and the mobile communications system yet 
maintaining information on the location of said mo- 
bite equipment and/or subscriber identity module, 

in response to labelling said subscriber identity (IM- 
Sl, ITSI) as forbidden in the database (DB) of the is 
mobile communications system (600). 

6. A method as claimed in claim 3, characterized by 
reporting said subscriber identity and the attempt of 
misusing said personal identification number (PIN) 
of the subscriber to the operator of the mobile com- 
munications system in response to said labelling of 
said subscriber identity (IMSI, ITSI) as forbidden in 
the database (DB) of the mobile communications 
system (600). ^5 

7. A method as claimed in claim 3, characterlzedby 

reporting said subscriber identity, subscriber data 
related to said subscriber and the attempt of misus- 
ing said subscriber identification number to the op- 30 
erator of the mobile communications system in re- 
sponse to said labelling of said subscriber identity 
(IMSI, ITSI) as forbidden in the database (DB) of 
the mobile communications system (600). 

3S 

8. A method as claimed in claim 3, characterized by 
reporting the attempt of misusing the subscriber 
identity module (509, SIM) and/or the personal 
identification number (PIN) of the subscriber to the 
legitimate owner of the subscriber identity module 40 
(509, SIM) and/or the personal identification 
number (PIN) of the subscriber in response to said 
labelling of said subscriber identity (IMSI. ITSI) as 
forbidden in the database (DB) of the mobile com- 
munications system (600). ^ 

9. A mobile equipment (500), said mobile equipment 
being a combination of a subscriber station (501, 
503, 505) and an individual subscriber identity mod- 
ule (509, SIM) containing a protected subscriber so 
identity (IMSI. ITSI), said individual subscriber iden- 
tity module being removably attached to the sub- 
scriber station, whereby a mobile equipment may 

be composed by attaching the subscriber identity 
module (509, SIM) to any subscriber station, the 55 
mobile equipment comprising: 

a user interface (505) for requesting a personal 



identification number (PI N) of a subscriber from 
the user of the mobile equipment, 
checking means (510) for checl^ing (103) the 
validity of said personal identification number 
(PIN) of the subscriber, 

a counter (511) for counting (108) the number 
of validity checks of the personal identification 
number (PIN) of the subscriber, and 
blocking means (515) responsive to sakJ coun- 
ter (511) for blocking (111) the subscriber iden- 
tity module (509, SIM) when the number of said 
validity checks exceeds (110) a predetermined 
number without the user of the mobile equip- 
ment (500) having entered a valid personal 
identification number (PIN), 

characterized by said mobile equipment further 

comprising: 

releasing means (516) responsive to said 
blocking means (515) for releasing (112) the 
protection of the protected subscriber identity 
(IMSI, ITSI) in the subscriber identity module 
(SIM. 509) after the blocking (111) of the sub- 
scriber identity module (509, SIM), 
means for requesting the released subscriber 
identity from the subscriber identity nrKXiule 
(SIM. 509). 

means tor sending the released subscriber 
identity from the subscriber identity module 
(SIM. 509) to the subscriber station (501 , 503, 
505). and 

transmission means (517) for transmitting 
(210) to the mobile communications system 
(600) the released subscriber identity and an 
Indication that the subscriber Identity nrxxiule 
(SIM, 509) has been blocked (111). 

10. A mobile equipment (500) as claimed in claim 9, 
characterized by said transmission means being 
arranged to transmit (210) said subscriber identity 
(IMSI, ITSI) and said indication that subscriber iden- 
tity module (SIM, 509) has been blocked (111), to 
the mobile communications system (600) in a reg- 
istration message. 



Patentanspruche 

1. Verfahren zum Uberpruten einer personlichen Iden- 
tifikationsnummer (PIN) eines Teilnehmers in ei- 
nem in einem mobilen Kommunikationssystem 
(600) eingesetzten Mobilgerat (500), wobeidas Mo- 
bilgerat eine Komblnation aus einer Teilnehmerstat- 
ion (501 , 503, 505) und einem eine geschutzte Teil- 
nehmeridentitat (IMSI, ITSI) enthaltenden individu- 
ellen Teilnehmeridentitatsmodul (509. SIM) ist. wo- 
bei das individuelle Teilnehmeridentitatsmodul aus- 
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tauschbar an der Teilnehmerstation angeordnet ist, 
wodurch ein Mobilgerat durch Anbringen des Teil- 
nehmeridentitatsmoduls (509, SIM) an jeder Teil- 
nehmerstation gebildet werden kann, wobei das 
Verfahren die Schritt umfaBt: s 

Anfordern (203) der personlichen Identifikati- 
onsnummer (PIN) des Teilnehmers von dem 
Benutzer des Mobilgerats, 

UberprOten (103) der Gultigkeit der durch den TO 
Benutzer eingegebenen personlichen Identifi- 
kationsnummer (PIN) anhand des Teilnehmer- 
identitatsmoduls» 

Wiederhoien ( 1 09) dieser Sch ritte, falls der Be- 
nutzer die gultlge personliche Identifikations- fs 
nummer (PIN) nicht eingibt, 
Blockieren (111) des Teilnehmeridentltatsmo- 
duls (509, SIM), wenn die Zahl der Anforderun- 
gen (203) und Uberprufungen (103) der per- 
sonlichen Identifikationsnummer (PIN) einen so 
vorbestimmten Schwellwert Qberschreitet 
(110), 

gekennzeichnet durch die weiteren Schritte 

2S 

Freigeben (112) eines Schutzes der geschOtz- 
ten Teilnehmeridentltat (IMSI, ITSI) in dem Teil- 
nehmeridentltatsmodul (509, SIM) nach dem 
Blockieren (111) des Teilnehmeridentitatsmo- 
duls (509. SIM), 30 
wobei die Teilnehmerstation die frelgegebene 
Teilnehmeridentltat von dem Teilnehmeridenti- 
tatsmodul anforderl (208), 
wobei das Teilnehmeridentitatsmodul die frel- 
gegebene Teilnehmeridentltat zu der Teilneh- 3S 
merstation sendet (209), 
Ubertragen (210) der Teilnehmeridentltat (IM- 
SI, ITSI) und einer Anzeige, daB das Teilneh- 
meridentitatsmodul (509, SIM) blockiert wurde. 
zu dem mobilen Kommunikationssystem (600). 40 

2. Verfahren nach Anspruch 1 . 
gekennzeichnet durch 

Ubertragen der Tellnehmeridentitat(l MSI, ITSI) und 
der Anzeige, daB das Teilnehmeridentitatsmodul 4S 
(509, SIM) blockiert wurde (111), zu dem mobilen 
Kommunikationssystem (600) In einer Registrier- 
nachricht. 

3. Verfahren nach Anspruch 1, so 
gekennzeichnet durch 

Kennzeichnen der Teilnehmeridentltat als verboten 
in einer Datenbank (DB) des mobilen Kommunika- 
tionssystems (600) im Ansprechen auf die Teilneh- 
meridentltat (IMSI, ITSI) und die Anzeige. daQ das 55 
Teilnehmeridentitatsmodul (509, SIM) blockiert 
wurde (111), die zu dem mobilen Kommunikations- 
system (600) ubertragenen (210) wurden. 
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4. Verfahren nach Anspruch 3, 
dadurch gekennzeichnet, daO 

die Teilnehmeridentltat nk:ht mehr fOr eine Anwen- 
dung der Dienst des mobilen Kommunlkationssy- 
stems gultig ist im Ansprechen auf die Kennzerch- 
nung der Teilnehmeridentltat (IMSi, ITSI) als verbo- 
ten in der Datenbank (DB) des mobilen Kommuni- 
kationssystems (600). 

5. Verfahren nach Anspruch 3, 
dadurch gekennzeichnet, daB 
die Teilnehmeridentltat nicht mehr fur eine Anwen- 
dung der Dienst des mobilen Kommunikationssy- 
stems gultig ist und das mobile Kommunikatbnssy- 
stem darOber hinaus eine Information Ober den Ort 
des Mobilgerats und/oder des Teilnehmeridentitats- 
moduls beibehalt. im Ansprechen auf die Kenn- 
zeichnung der Teilnehmeridentltat (IMSI, ITSI) als 
verboten in der Datenbank (DB) des mobilen Kom- 
munikationssystems (600). 

6. Verfahren nach Anspruch 3, 
gekennzeichnet durch 

Benachrichtigen des Betreibers des mobilen Kom- 
munikationssystems Ober die Teilnehmeridentrtat 
und den Versuch des MiBbrauchs der personlichen 
Identifikationsnummer (PIN) des Teilnehmers im 
Ansprechen auf die Kennzeichnung der Teilneh- 
meridentltat (IMSI, ITSI) als verboten in der Daten- 
bank (DB) des mobilen Kommunikationssystems 
(600). 

7. Verfahren nach Anspruch 3, 
gekennzeichnet durch 

Benachrichtigen des Betreibers des mobilen Kom- 
munikationssystems Ober die Teilnehmeridentltat. 
auf den Teilnehmer bezogene Teilnehmerdaten und 
den Versuch des MiBbrauchs der Teilnehmerideri- 
tifikationsnummer im Ansprechen auf die Kenn- 
zeichnung der Teilnehmeridentltat (IMSI, ITSI) als 
verboten in der Datenbank (DB) des rriobilen Kom- 
munikationssystems (600). 

8. Verfahren nach Anspruch 3, 
gekennzeichnet durch 

Benachrichtigen des rechtmaBigen Besitzers des 
Teilnehmeridentitatsmoduls (509, SIM) und/oder 
der personlichen Identifikationsnummer (PIN) des 
Teilnehmers Ober den Versuch des MiBbrauchs des 
Teilnehmeridentitatsmoduls (509, SIM) und/oder 
der personlichen Identifikationsnummer (PIN) des 
Teilnehmers im Ansprechen auf die Kennzeichnung 
der Teilnehmeridentitat (IMSI, ITSI) als verboten in 
der Datenbank (DB) des mobilen Kommunikations- 
systems (600). 

9. Mobilgerat (500). wobei das Mobilgerat eine Kom- 
bination aus eine Teilnehmerstation (501 , 503, 505) 
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und einem eine geschutzte Teilnehmeridentitat (IM- 
SI. ITSI) enthattenden individuellen Teilnehmer- 
identitatsmodul (509, SIM) 1st, wobei das indlvldu- 
elte TeilnehmeridentitStsmodul austauschbar an 
der Teilnehmerstation angeordnet ist, wodurch ein s 
Mobilgerat durch Anbringen des Teilnehmeridenti- 
tatsmoduls (509. SIM) an jeder Teilnehmerstation 
gebildet werden kann, wobei das Mobilgerat um- 
fa8t: 

10 

eine Benulzerschnittstelle (505) zum Anfordern 
einer personlichen identifikationsnummer 
(PIN) eines Teilnehmers von dem Benutzer des 
Mobitgerats, 

eine Uberprufungseinrichtung (51 0) zum Ober- 
prufen (103) der Gultigkeit der personlichen 
Identifikationsnummer (PIN) des Teilnehmers, 
einen Zahler (511) zum Zahlen der Anzahl von 
GDItigkeltsQberprufungen der personlichen 
Identifikationsnummer (PIN) des Teilnehmers, 20 
und 

eine Blockiereinrichtung (51 5). die auf den Zah- 
ler (511) ansprtcht, zum Blockieren (111) des 
Teilnehmeridentitatsmoduls (509, SIM), wenn 
die Anzahl der Gultigkeitsuberprufungen eine 25 
vorbestlmmte Zahi Qberschreltet (110) ohne 
Eingabe einer gultigen personlichen Identifika- 
tionsnummer (PiN) durch den Benutzer des 
Mobilgerats (500), 

30 

gekennzelchnet durch 

eine Freigabeelnrichtung (516), die auf die 
Blockiereinrichtug (515) anspricht, zum Frerge- 
ben (112) des Schutzes der geschutzten Teil- 55 
nehmeridentitat (IMSI, ITSI) In dem Teilneh- 
meridentitatsmodul (SIM, 509) nach dem Blok- 
kieren (111) des Teilnehmeridentitatsmoduls 
(509. SIM). 

eine Einrlchtung zum Anfordern der freigege- 40 
benen Teilnehmeridentitat von dem Teilneh- 
meridentitatsmodul (SIM. 509), 
eine Einrlchtung zum Senden der freigegebe- 
nen Teilnehmeridentitat von dem Teilnehmer- 
identitatsmodul (SIM, 509) zu der Teilnehmers- 4S 
tation (501 , 503. 505), und 
eine Obertragungseinrichtung (517) zum Ober- 
tragen (210) der freigegebenen Teilnehmeri- 
dentiat und einer Anzeige, da3 das Teilnehmer- 
identitatsmodul (SIM. 509) blockiert wurde so 
(111) zu dem mobiien Kommunikationssystem 
(600). 

10. Mobilgerat (500) nach Anspruch 9, 

dadurch gekennzelchnet, dal3 SS 
die Obertragungseinrichtung ausgestaitet ist zum 
Ubertragen (210) der Teilnehmeridentitat (IMSI, IT- 
SI) und der Anzeige, daB das Teilnehmeridentitats- 
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modul (SIM, 509) blockiert wurde (111), zu dem mo- 
biien Kommunikatbnssystem (600) in einer Regt- 
striemachricht. 



Revendlcatlons 

1. Proc6d6 de v6rificatk>n du numdro d'identification 
personnel (PIN) d'un abonn6 dans un dquipement 
mobile (500) utilise dans un systems de communi- 
cation mobile (600), tedit ^quipement mobile 6tant 
une combinaison d'un poste d'abonn6 (501, 503, 
505) et d'un module d'identltd d'abonnd individual 
(509. SIM) contenant une identity d*abonn6 protd- 
g6e (IMSI. ITSI), tedit module d'identitd d'abonnd 
indlviduel Stant fixd de manidre amovible au poste 
d'abonn6, grdce k quoi un ^quipement mobile peut 
6tre constitu^ par la fixation d'un module d' identity 
d'abonn^ (509. SIM) d un quelconque poste d'abon- 
n6, le proc^dd comprenant les stapes qui consis- 
tent d : 

demander (203) k I'utilisateur de I'^quipement 
mobile le num6ro d'identification personnel 
(PIN) de rabonn§. 

verifier (103) aupr^s du module d'identitd de 
I'abonnd la validity du num6ro d'identification 
personnel (PIN) introduit par I'utilisateur. 
repeter (109) ces 6tapes tant que I'utilisateur 
n'a pas introduit le num6ro d'identification per- 
sonnel (PIN) correct, 

bloquer (111) le module d'identitd de I'abonnd 
(509. SIM) lorsque le nombre de demandes 
(203) ou de verifications (103) du num6ro 
d'identification personnel (PIN) exc^de (110) 
une valeur de seuil prdddterminde. 

caract^risd en ce que le proc6d6 comprend 
en outre les stapes suivantes : 

la Iev6e (112) d'une protection de Tidentrt^ 
d'abonn6 prot6g6e (IMSI. ITSI) dans le module 
d'identite d'abonnd (509. SIM) aprds le blocage 
(111) du module d'kientit^ de d'abonn^ (509, 
SIM). 

le poste de Tabonnd demande (208) Tidentitd 
d'abonn^ libdr^e, au module dMdentltd d'abon- 
n6. 

le module d'identit^ d'abonnd envoie (209) au 
poste de I'abonnd, Tidentitd d'abonnd libdrde, 
la transmission (210) au syst^me de communi- 
cation mobile (600) de ladite identity d'abonnd 
(IMSI, ITSI) ainsi que d'une indication du fait 
que ie module d'identit^ d'abonn6 (509. SIM) a 
6t4 bloqud. 

2. Proc6d6 selon la revendication 1, 

caract^ris^ en ce qu'il comprend l*op6ration 
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qui conslste ^ transmettre au systfeme de commu- 
nication mobile (600) ladite identity d*abonn6 (IMSl, 
ITSI) et ladite indication du fait que le module d'iden- 
m d'abonnd (509, SIM) a 6td btoqud (111). dans 
un message de concordance. s 

3. Proc^dS selon ia revendication 1 , 

caract^ris^ en ce qu'il comprend I'op^ration 
qui consists k classer ladite identity d'abonnd com- 
me interdlte, dans une base de donn^es (DB) du io 
syst6me de communication mobile (600), en r6pon- 
se k ladite identite d'abonn6 (IMSl, ITSI) et k ladite 
indication du fait que le module d'identitd d'abonn6 
(509. SIM) a et§ bloqu^ (111). transmises (210) au 
syst^me de communication mobile (600). 

4. Proc^d^ selon la revendication 3. 

caracteris^ en ce que, en r^ponse audit clas- 
sement de ladite identity d'abonn6 (IMSl, ITSI) 
comma interdite, dans la base de donnSes (DB) du 20 
systdme de communication mobile (600), Tidentitd 
de i'abonn^ n'est plus valide pour rutllisation des 
services du systems de communication mobile. 

5. Precede selon la revendication 3. 25 

caracterisd en ce que. en reponse au classe- 
ment de ladite identity d'abonn6 (IMSl, ITSI) com- 
me interdite, dans la base de donn6es (DB) du sys- 
t^me de communication mobile (600), I'identitS de 
I'abonnd n*est plus valide pour utiliser les services 30 
du systfeme de communication mobile mais le sys- 
teme de communication mobile conserve nean- 
moins les informations sur la localisation dudit equi- 
pement mobile et/ou dudit module d'identite d'abon- 
n6. 35 

6. Precede selon la revendication 3, 

caract6ris6 en ce qu'il comprend rop6ration 
qui consists k signaler ladite identity d'abonn^ ainsi 
que la tentative d'utilisation abusive dudit numSro 40 
d'identification personnel (PIN) de I'abonn^, k l'op6- 
rateur du systfeme de communication mobile, en re- 
ponse audit classement de ladite identity d'abonnd 
(IMSl, ITSI) comme interdite, dans la base de don- 
nees (DB) du syst&me de communication mobile ^ 
(600). 

7. Procede selon la revendication 3, 

caract6ris6 en ce qu'il comprend I'op^ration 
qui consiste h signaler ladite identity d'abonn^, les ^ 
donnees d'abonne concernant ledit abonn6 ainsi 
que la tentative d'utilisation abusive dudit numdro 
d'identification personnel, k I'opdrateur du syst^me 
de communication mobile, en reponse audit classe- 
ment de ladite identite d'abonnd (IMSl, ITSI) com- ss 
me interdite, dans la base de donn§e (DB) du sys- 
tems de communication mobile (600). 



Proc6d6 selon la revendication 3, 

caract6ris6 en ce qu'il comprend I'opS ration 
qui consiste k signaler ia tentative d'utilisation abu- 
sive du module d'identite d'abonnd (509, SIM) et/ou 
du num6ro d'identification personnel (PIN) de 
rabonn6, au propri6taire legitime du module d'iden- 
tite d'abonne (509, SIM) et/ou du num6ro d'identifi- 
cation personnel (PIN) de Tabonnd, en reponse 
audit classement de ladite identite d'abonne (IMSl, 
ITSI) comme interdite, dans la base de donnees 
(DB) du systeme de communication mobile (600). 

Equipement mobile (500), ledit equipement mobile 
etant une combinaison d'un poste d'abonne (501 , 
503. 505) et d'un module d'identite d'abonne indivi- 
duei (509. SIM) contenant une identite d'abonne 
protegee (IMSl. ITSI), ledit module d'identite 
d'abonne indivlduel etant fixe de maniere amovible 
au poste d'abonne, grace h quo! un equipement mo- 
bile peut etre constitue par la fixation du module 
d'identite d'abonne (509, SIM) k un quelconque 
poste d'abonne, I'equipement mobile comprenant : 

une interface utilisateur(505) servant Sdeman- 
der k I'utilisateur de I'equipement mobile le nu- 
mero d'identification personnel (PIN) d'un 
abonne, 

des moyens de verification (510) servant k ve- 
rifier (103) la validite dudit numero d'identifica- 
tion personnel (PIN) de I'abonne, 
un compteur (511) servant k compter (108) le 
nombre de verifications de validite du numero 
d'identification personnel (PIN) de I'abonne, et 
des moyens de blocage (515) repondant audit 
compteur (511) pour bloquer (111) le module 
d'identite d'abonne (509, SIM) lorsque le nom- 
bre desdites verifications de validite excede 
(110) un nombre predetermine sans que I'utili- 
sateur de I'equipement mobile (500) ait intro- 
du'rt un numero d'identification personnel (PIN) 
correct, 

caracterise en ce que ledit equipement mobile 
comprend en outre : 

des moyens de levee (516) repondant auxdits 
moyens de blocage (515) pour lever (112) la 
protection de I'identite d'abonne protegee (IM- 
Sl, ITSI) dans le module d'identite d'abonne 
(SIM, 509) aprds le blocage (111) du module 
d'identite d'abonne (509. SIM), 
des moyens sen^ant & demander Tidentite 
d'abonne liberee au nrKxiule d'identite d'abonne 
(SIM. 509), 

des moyens servant k transferer I'identite 
d'abonne liberee depuis le module d'identite 
d'abonne (SIM, 509) vers le poste d'abonne 
(501,503,505). et 
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des moyens de transmission (517) servant k 
transmettre (210) au systdme de comnrtunlca- 
tion mobile (600) i'identit6 d'abonnd libdr^e ain- 
si qu'une indication du fait que le module d'iden- 
tltd d'abonnd (SIM, 509) a M bloqu6 (111). 5 

10. Equipement mobile (500) selon la revendlcation 9. 
caractdrisd en ce que lesdits moyens de 
transmission sont amdnagds de fagon d transmet- 
tre (210) ladite identit6 d'abonnd (IMSI. ITSI) et la- to 
dite indication du fait que le module d'identitd 
d'abonnS (SIM, 509) a 616 bloqu6 (111 ), au syst&me 
de communication mobile (600). dans un message 
de concordance. 
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